MySITE is a PHP-based content management application. The application is exposed to multiple issues because it fails to sufficiently sanitize user-supplied input. 1) A cross-site scripting issue that affects the "query" parameter in the "portal/modules.php" script. 2) A SQL injection issue that affects the "pid" parameter of the "print.php" script.
Ref: http://www.securityfocus.com/archive/1/513968
10.40.27 - CVE: Not Available
Platform: Web Application - Cross Site Scripting
Ref: http://www.securityfocus.com/archive/1/513968
10.40.27 - CVE: Not Available
Platform: Web Application - Cross Site Scripting
0 comments:
Post a Comment